• Skip to main content
  • Skip to primary sidebar
  • Skip to footer

  • About
    • About us
    • Why SeedTime?
    • Our Beliefs
    • The Story of SeedTime
  • Podcast
  • Free Book
    • Get your 1st copy free (+S&H)
    • Order multiple copies here
  • Programs
    • Login
    • Mission-Driven Millionaire
    • True Financial Freedom
    • The Real Money Method (unbudgeting) course
    • The 10x Investing course
  • Churches
  • Blog
    • The 14 Financial Tools We Actually Use
    • Our strategy for giving away millions
    • 5 Bible Verses You Should Know (Free PDF)
    • 25 Ways to Save Money
    • Why we began giving our age as a percentage
    • My Checklist To Financial Freedom (Free PDF)
    • Tithing: an honest look and what we do
    • Why I took a Sabbatical YEAR (and how I did it)
    • How to travel for FREE [161 hotel nights and 103 flights all free]
    • 4 Financial Lessons from Solomon: The Richest Man Ever
    • How to become a millionaire by turning $2k into $1 mil
    • How to get out of credit card debt (Free PDF)
    • How I made $2,145 Last Month by decluttering
    • How I Broke Free From the Rat Race (in less than 2 years)
    • We just checked off the biggest goal in our life
    • Our Honest Medi-Share Review after 14 years
    • 4 Money Habits To Start (that basically guarantee financial success)
  • Email

I received a ransom email (and this is what I did)

written by Bob Lotich, CEPF® | Saving Money

Received a ransom email, find out what I didLast Thursday I was having a really great day.

I was getting important stuff done and feeling like I was making some good progress on the day’s goals.

My parents were coming into town to visit with us for a few days and the weekend was nearing.

And then I got the email.

As I was finishing up an article I was writing, I got a message from my assistant that there was an email that I needed to see right away.

I only process email on Mondays, but my assistant keeps tabs on what is going on in my inbox, in case something urgent comes up that I need to see.

And in this case, I am really glad that I did see this one right away.

The ransom email

As I popped open my inbox, I couldn’t believe what I was seeing.  The password that I had used on hundreds of sites was sitting there right in the subject line.

The email went on to explain that they not only had my password but had hacked into my webcam and installed a keylogger on my computer as well.

They politely informed me that if I didn’t send them $2900 worth of Bitcoin in the next 24 hours, they would begin their attack.

6 months earlier…

Just about 6 months earlier I was chatting with a friend who had his entire business taken hostage from him and held for ransom.

They had gained access to his primary email account and all his banking institutions as well as core business websites.  And since they had control of his main email account (which served as his hub) it was a nightmare to get resolved.

He ended up getting things sorted out without paying the ransom, but the agony that it brought on him for a few days was bad enough.

So as I was reading this email that I had just received I couldn’t help but think of where this could be headed.

I was suspicious as to whether or not this email was legit or not, but the bottom line was that they had a password that I had used hundreds of times and there was no way I was going to be able to remember all the places I had used that password.

And because of that, I didn’t really know how much damage they could actually do.

What I did

The first thing I did was reach out to my friend that I mentioned above to ask his advice.  He suggested:

    • Making sure I had 2-Factor authentication on every important account that I could think of (that offered it).
    • Calling my web host to let them know about the threat, just in case they tried to hijack my website.
  • That I do not respond to the email.

After I got off the phone with him, my assistant and I went to work, making sure every account we could think of was using a different password than what was included in the email.

I had stopped using that password years ago and began using a different password for every site (as the experts suggest), but I had never gone back and attempted to change it on all those old sites.

After we were very confident that all of the most business-critical sites had 2-Factor Authentication and/or different passwords, I decided that was all we could do. Now it was time to let it go and trust that the Lord would fight the battle.

What I learned from this experience

I had already been doing a pretty good job with online security which really helped minimize the potential damage that could have been done.

But, there was no getting around the mistake of having spent 5+ years using the same password for every site that I created an account on.

It also was just a good reminder that any security system is only as good as its weakest link.

So even if I am doing a fantastic job creating strong passwords and keeping an account secure, but an employee, spouse, friend, etc. is not, then we can still get ourselves in trouble.

What I would recommend to you

If you have no idea where to start but want to start protecting yourself better than you have been, this is what I would recommend, knowing what I know now.  

1. Start using a different password for every account

If you use a service like 1Password or LastPass definitely use their 2-Factor Authentication options.

2. Use 2-Factor Authentication for everything you can

While this sounds complicated, it actually isn’t that difficult to do for most sites that offer it. And for most people, it virtually guarantees that you will keep your account safe.

You can do this with your smartphone or use a Yubikey (just check that it works with your account).

To learn more about it or see how it works, watch this video:

3. Consider ID Theft insurance

This is a little bit different but falls under the category of 21st-century security so I thought I would add it.  You do not have to have this, because if your identity gets stolen you can do everything that most of these companies would do for you, BUT if they are good at what they do this insurance will save you tons of time if this ever happens to you.

I have seen stats that say that the average victim of identity theft has to spend 100-200 hours of time getting all the issues resolved.

With ID theft insurance, you are paying a company to take most of that burden off your plate, should an incident ever occur.

The best 2 companies out there that I know of are LifeLock and Zander.  I use one of them, but like any insurance company, you never really know how good they are until you file a claim – and thankfully I have not had to yet.  So do your own research when making your decision.

4. Avoid using Public WIFI

Use your smartphone’s hotspot instead when possible.

5. Get a webcam cover

Mark Zuckerberg (the guy who has eroded so much of our privacy) always keeps his webcam covered because he knows how easy it is to hack.

That’s enough for me.  I bought these webcam covers.

6. Use Anti-Virus software

There are a lot of options, but Avast is a pretty good free option to try.

7. Always use a passcode on your smartphone

For most of us, this is the easiest access point for bad guys into our lives. I hate that it slows me down getting into my phone, but it is worth it.

There are always more things to do to protect yourself depending on your level of vulnerability and risk tolerance, but these are a few to get you started.

If you want more, check out our article: 16 ways to protect yourself from identity theft.

So what ended up happening?

I kept an eye on my inbox over the next 24 hours and never heard another peep. I assume that if it was a serious threat they would have gotten back to me.

What I suspected from the beginning (but wasn’t 100% sure) was that this email was an automated one sent to me and thousands of others who had their passwords compromised in one of the data breaches.

And just yesterday I got another email, very similar to this one, so that is even more confirmation that they are just fishing to see who bites.  

This is going to become commonplace

What is so scary to me is that I think emails like this are going to become commonplace.  

With all the massive data breaches where our password information was compromised, it just makes sense that after that info is sold on the black market that we would begin getting emails like this.

God only knows how many others got the email I did and paid them out of fear.

We have all gotten the scam emails that try to get our money by greed (the promise of more money) or by compassion (tugging on our heartstrings), but I would argue that fear is going to be an even more effective tool for the scammers.

And that is what makes ransom emails like this something to watch out for.

Spread the word

Please share this with anyone who may benefit from this information – I consider myself fairly tech-savvy and this email was still worrisome because it was created with such skill so I’m sure many people are falling for it.  

And I want to stop that from happening any way I can, so definitely pass this along to anyone who you think could benefit from it.

Stay safe out there!

Bob sign5

Related posts:

  1. Why we began giving our age as a percentage
  2. 6 Things You Can Buy That Will Pay for Themselves in a Year
  3. Lessons from the Parable of the Ten Minas
  4. 30 Motivational quotes to make it an Awesome day!

About Bob Lotich, CEPF®

Bob Lotich, CEPF® is a Certified Educator in Personal Finance and has over 15+ years experience writing about Biblical personal finance. He is the award-winning author of Simple Money, Rich Life and has been named a top 20 social influencer in personal finance. Check out his on-demand Christian financial class for couples, small groups and churches called True Financial Freedom.

IFCFH Book of the Year
"The best combination of personal finance and the Christian faith that I’ve read"
– James T. (SMRL reviewer)

In this biblically sound and grace-filled money book, you'll discover the NEW rules of money that will transform your financial life. Say goodbye to outdated advice and hello to a simple, automated system that helps you achieve better results with less time and effort.

"The best combination of personal finance and the Christian faith that I’ve read"
Learn more
We earn a commission if you make a purchase, at no additional cost to you.

Primary Sidebar

Bob Lotich

Hi there! We are Bob & Linda Lotich. Jesus followers, authors, podcasters, and undying fans of Michael Scott.

This site contains the lessons we learned on our journey from being stingy, debt-ridden fools, to being able to reach our biggest financial goal of giving $1 million by age 40, having zero debt & a paid off house by age 31, and peace with money in the process.

Now we share our best lessons with people like you, groups, and churches with our Award-winning book Simple Money, Rich Life and our 6-week video course True Financial Freedom.

Grab our book!

Simple Money Rich Life

Legal Disclaimer

The articles on this site should not be taken as financial advice. Please contact a financial advisor (or coach) for specific advice regarding your situation. Any references to interest rates, giveaways, deals, products, and websites are subject to change without notice. We try our best to keep the information current, but things are always changing so it may be different now than when it was first published. Also, all the pages on SeedTime help us pay the bills by using affiliate relationships with Amazon, Google, eBay and others but our opinions are NEVER for sale. Find out more here.

Footer



SeedTime is a 2x Plutus award winning website.
seedtime money logo



SeedTime BBB Business Review
seedtime instagram seedtime money youtube channel seedtime money twitter with Bob Lotich


Our book Simple Money, Rich Life was named 2022 book of the year!
  • Home
  • About
  • Beliefs
  • Blog
  • Courses
  • Shop
  • For Churches
  • Press
  • Affiliates
  • Login

Privacy Policy | Terms | Reviews | Earnings Disclaimer | Contact | 636-344-0438
625 Bakers Bridge Ave Suite 105-134 Franklin, TN 37067
©2007-2025 · SeedTime (Formerly ChristianPF)